Information Security Policy
Information Security Policy
Scope of Application
This policy covers the organizational, human, physical, and technical resources associated with our information assets.
Information Security Policy
We define the following as our information security policy.
"We protect the information assets entrusted to us and our customers from information risks such as falsification, leakage, and destruction by continuously improving our operations in compliance with the requirements for information security management and protection.”
Action Guidelines for Information Security
In order to achieve the Information Security Policy, the following action guidelines shall be set forth.
- Build threat intelligence as a response to cyber attacks.
- Strengthen privacy protections.
- Protect our information assets from all information risks, whether internal or external, intentional or negligent.
- Properly protect and manage customer information.
- To raise awareness of information security among the president and employees.
- Unify the criteria for taking information security measures.
- Promote appropriate disclosure and information sharing.
- To maintain and enhance our credibility and corporate culture.
All users of our information assets shall recognize the importance of information security and shall comply with this methodology.
- Establish, enforce, implement, maintain, and ensure the thoroughness of information security policies
The TMS Chief Executive Officer, as the person ultimately responsible for information security, shall formulate an information security policy and ensure that all employees are fully aware of it.
In addition, in order to ensure and maintain information security, the cycle of information security management (planning, implementation, evaluation, and countermeasures) shall be established and implemented.
The TMS general manager and employees shall comply with domestic and foreign laws and regulations, this policy, and relevant internal rules to ensure information security in the performance of their duties.
The TMS General Manager shall revise this policy, related rules and procedures as necessary through management reviews and other means.
Certifications Standards
ISO/IEC 27001: 2022,JIS Q27001:2023
| Scope of Certification | Development and support of in-house software systems related to drug and medical device approval applications |
|---|---|
| Certification Number | JP025386 |
| Initial certification date | April 26, 2019 |
| Date of certification | September 20, 2024 |
| Certification Expiration Date | October 17, 2027 |
Established: July 19, 2012
Last revised: February 01, 2025
Planet Pharma Solutions, Inc.
Representative Director: Masayuki Ueno